The FortiGuard Intrusion Prevention Service provides the latest defenses against stealthy
network-level threats. It uses a customizable database of more than 11000 known threats to enable
FortiGate and FortiWiFi appliances to stop attacks that evade conventional firewall defenses.

FortiGate next gen firewalls with FortiOS and centralized management solutions offer extensive
visibility
into application usage in real time, as well as trends over time through views, visualizations, and
reports. You
can use application control to keep malicious, risky, and unwanted applications out of your network
through
control points at the perimeter, in the data center, and internally between network segments.

FortiGuard Web Filtering is the highest rated VBWeb certified web filtering service in the industry for
security
effectiveness by Virus Bulletin. It blocked 97.8% of direct malware downloads and stopped 98.6% of
malware served
through all tested methods in Virus Bulletin’s 2017 VBWeb security testing. According to Virus Bulletin,
Fortinet is the
only vendor in the 2017 VBWeb tests confident enough in our security solution to share results in a
public test.

FortiGuard Antispam provides a comprehensive and multi-layered approach to detect and filter spam
processed by organizations. Dual-pass detection technology can dramatically reduce spam volume at the
perimeter, giving you unmatched control of email attacks and infections. Additionally, FortiClient
endpoint
agents can block spam messages on remote computers and mobile devices.

Malware have evolved to slip past traditional security controls by pairing with an exploit. This
insidious behavior relies on vulnerabilities of legitimate software thus can operate freely and undetected.
Fortinet provides a systematic and automated method of patching applications on an endpoint, eliminating
manual processes while reducing the attack surface within an organization and helping meet regulatory
compliance.

Fortiguard Labs collects indicators of compromise (IOCs) by a variety of methods. Following are some examples:

Machine Learning - ML techniques are used to capture IOCs (indicators of compromise) such as malicious IP addresses, domains and urls.

Global Sensors - millons of sensors deployed around the globe consisting of participating customer devices, honeypots and deception decoys pick up early signals of compromise in the global cyber space.

Community Submissions - Participating customers submit new threats to Fortinet for analysis. The submission is either manual or through Fortinet Cloud Sandbox technology. On a daily bases, FortiGuard lab executes 500,000+ malware samples to extract IOCs.

Human Analysis - 200+ security analysts in the FortiGuard labs tirelessly search and hunt for threats around the globe

The FortiGuard labs collect the IOC indicators and combine them into a package on a daily basis for delivery to Fortinet products via the FDN (Fortiguard distribution network).

For example the FortiAnalyzer product can use the IOC package to alert on suspicous or infected hosts in the network.

Stay on track of your Security Roadmap and Target Security Maturity level with measurable and meaningful
feedback in the form of actionable Configuration Recommendations, and Key Performance/Risk Indicators.
Build Senior Management Confidence by demonstrating effective business asset protection and compliance with
regulatory requirements. Security Rating is now a subscription service that FortiGuard offers when you
purchase a Security Rating license.

This service allows you to:

Dynamically receive updates from FortiGuard.

Run Security Rating checks for each licensed device in a Security Fabric.

Run Security Rating checks in the background or on demand.

Submit rating scores to FortiGuard and compare how you rank against peers in the same region, industry and/or company size.